16 matches found
EUVD-2020-5897
Malware in sbrugna...
Wiz Receives Morgan Stanley Innovation Award at 20th Innovation Summit
Recognition in the Cyber category honors Wiz for its exceptional technology partnership with one of the world’s leading financial institutions...
Morgan Stanley's years-long "extensive failure" to protect customer data ends in huge fine
On Tuesday, the Securities and Exchange Commission SEC charged financial company Morgan Stanley a $35M fine for "the firm's extensive failures, over five years, to protect the personal identifying information, or PII, of approximately 15 million customers. The company agreed to settle the penalty...
New CISA Director Confirmed, W.H. Gains Cyber-Director
The U.S. has made a key move to shore up its cybersecurity strategy, with the confirmation of Jen Easterly as the director of the Cybersecurity and Infrastructure Security Agency CISA on Monday. Easterly, a former official at the National Security Agency from 2011 to 2013 and two-time Bronze Star...
Last Week’s Security news: PrintNightmare patches and Metasploit, Kaseya CVEs, Morgan Stanley Accellion FTA, Cisco BPA and WSA, Philips Vue PACS, CISA RVAs, Lazarus job offers
Hello guys! The third episode of Last Week’s Security news, July 5 - July 11. There was a lot of news last week. Most of them was again about PrintNightmare and Kaseya. The updates for PrintNightmare CVE-2021-34527 were finally released mid-week. It became possible not only to disable the service...
Morgan Stanley Hobbes Out-of-Bounds Read/Write Vulnerability
Morgan Stanley Hobbes is an embedded language compiler and runtime program from Morgan Stanley USA. An out-of-bounds read/write vulnerability exists in Morgan Stanley Hobbes version 2020-05-21 and earlier. The vulnerability stems from a lack of boundary checking in the array implementation. An...
CVE-2020-13656
In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...
CVE-2020-13656
In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...
Out-of-bounds
In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...
CVE-2020-13656
In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...
CVE-2020-13656
Morgan Stanley Hobbes contains an out-of-bounds read/write vulnerability in its array implementation, reported up to 2020-05-21. The缺 bound checking flaw allows an attacker to trigger OOB access, enabling code execution via RPC. Affected version details: Hobbes 2020-05-21 and earlier (per CNVD-20...
stockplanconnect.morganstanley.com Improper Access Control vulnerability
Open Bug Bounty ID: OBB-1092503 Security Researcher Gh05tPT Helped patch 6892 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting...
Morgan Stanley Research - Customized SSL, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Morgan Stanley Research published at the 'play' market has multiple vulnerabilities...
Morgan Stanley Insider Theft Wealth Management Client Data
The financial services giant Morgan Stanley announced yesterday that that an employee had stolen sensitive information pertaining to more than 900 of the firm’s wealth-management clients. According to a company press release, the wealth management employee in question “has been terminated.”...
Data Breach Affects Two Million NY Customers, State Commission to Investigate
The New York State Public Service Commission announced yesterday they’ll be looking into a data breach that may have exposed the personal information of almost two million customers to unknown attackers. An employee from a software consulting firm contracted by New York State Electric & Gas NYSEG...
Morgan Stanley Smith Barney Breach Loses Information of 34,000
Retail brokerage Morgan Stanley Smith Barney MSSB has notified 34,000 investment clients that some of their data has been lost, including their names, addresses, social security numbers, tax identification numbers and investment income from 2010, according to a report on the Dow Jones newswires...